#nixos-security on 2018-10-08

12:14 copumpkin has quit [Quit: Textual IRC Client: www.textualapp.com]

12:25 adisbladis has quit [Ping timeout: 245 seconds]

14:36 <andi-> I wish we would just get something like unveil instead but at least people start working on access restrictions to get rid of some of the string parsing otherwise required:

14:36 <andi-> https://lwn.net/SubscriberLink/767547/9f1687dfcb585770/

15:03 <ckauhaus> cleaning up some old 17.09 vuln roundups - I doubt anyone gonna fix this stuff

15:08 <ckauhaus> lol

15:08 <ckauhaus> vulnix found a super old issue in tetex (CVE-2005-3624)

15:09 <ckauhaus> no idea why this is popping up right now

15:09 <ckauhaus> #48054

15:09 <{^_^}> https://github.com/NixOS/nixpkgs/issues/48054 (by ckauhaus, 3 minutes ago, open): Vulnerability roundup 48 (release-18.03)

15:15 <andi-> ckauhaus: NVD Last Modified:

15:15 <andi-> 10/03/2018

15:15 <andi-> thats why ;)

15:15 <andi-> someone has probably changed/fixed the CPE entries

15:26 <ckauhaus> yeah

15:29 <ckauhaus> perhaps CVE-2018-15173 (nmap) is more interesting

15:29 <ckauhaus> no bugfix release right now though

15:38 <andi-> That reminds me of implementing a proper CPE parser and not the ugly hack I am using right now..

15:55 <ckauhaus> andi-: do you go to NixCon?

15:56 <ckauhaus> would be a great place to discuss some security infrastructure questions

15:59 r5d has quit [Quit: WeeChat 2.2]

16:00 <andi-> ckauhaus: yes ill be there. We already talked briefly last year. You might not associate me with a face tho..

16:02 <ckauhaus> not sure ... I've talked to so many people last year

16:07 <ckauhaus> anyway

16:08 <ckauhaus> looking forward :)

16:09 <ckauhaus> things have evolved quite a bit, so it might be a good idea to see where we can combine efforts to improve security tooling

16:21 <andi-> Yep

16:28 r5d has joined #nixos-security

18:36 ckauhaus has quit [Quit: WeeChat 2.0]